diff --git a/clusters/k8s01/monitoring/ingress.yaml b/clusters/k8s01/monitoring/ingress.yaml
index 61939ac6168759138452dfa0fbdc7a1eaab6e322..5f3893f32ed921a2598338c01e5a0518d1892908 100644
--- a/clusters/k8s01/monitoring/ingress.yaml
+++ b/clusters/k8s01/monitoring/ingress.yaml
@@ -15,6 +15,11 @@ metadata:
                 ngx.header["Set-Cookie"] = "name_1=" .. ngx.var.name_upstream_1 .. ngx.var.auth_cookie:match("(; .*)")
               end
             }
+        nginx.ingress.kubernetes.io/enable-modsecurity: "true"
+        nginx.ingress.kubernetes.io/enable-owasp-core-rules: "true"
+        nginx.ingress.kubernetes.io/modsecurity-transaction-id: $request_id
+        nginx.ingress.kubernetes.io/modsecurity-snippet: |
+            SecRuleEngine On
 spec:
     rules:
         - host: ENC[AES256_GCM,data:k1mCBDKYvRLLC489r7yvk9PRDsQh5IgUpOaOfdhpQCwUNN8=,iv:AuBQnC2duZJM5/aYASq6gcovFPhECGk9EWjMaBgeRzQ=,tag:VdMb/Rn54dWpbDjxbEjPvA==,type:str]
@@ -59,8 +64,8 @@ sops:
     azure_kv: []
     hc_vault: []
     age: []
-    lastmodified: "2022-02-02T19:08:26Z"
-    mac: ENC[AES256_GCM,data:aTZIOV5x/aWKSpl++ICuQN8ypNu4Mnheo4mClzSqm5MpzHGbl61Wfin3tE8+9iA6mTlYsoO1XRwwVb0XAhel6PBgOf7lOna82GevyQTLSJ/N07I2p/HZPOmiuddQ3k/ztjDZghSw/wfZqgtZlOBFJnOPvLokYL7eBT+m2ncH1Xo=,iv:Erd5u0GtV+nDD1Xl6ZQZbikeSswMGGAxzmxT4+86NZo=,tag:oYLi8WVzcmeZzQe3HmF45w==,type:str]
+    lastmodified: "2022-03-04T20:20:07Z"
+    mac: ENC[AES256_GCM,data:89+NnTSezwEaWblwuCKmD69023CSaX7+M5Y0rIcOicaSF77mG9bg7GQyciWlvOCcbWezpxR2rjQDmzXX8e+VoaDmy2JeUeq4ULgDnl4Jqgv6Lnz7+u2z0Pyt+f4jj7KZbscR9p8iMHBElu2Ici5Z4KsfmbkAU6Pk5evE1EdqyLw=,iv:IAbEmb/5CN5ZHvntAN/z/ZBBlIaQSzdftc3lQZW40pM=,tag:Aijd9Ye2kVmo7QqWQICKOg==,type:str]
     pgp:
         - created_at: "2022-01-22T02:43:51Z"
           enc: |-